“(90) In such cases, a data protection impact assessment should be carried out by the controller prior to the processing in order to assess the particular likelihood and severity of the high risk, taking into account the nature, scope, context and purposes of the processing and the sources of the risk.
That impact assessment should include, in particular, the measures, safeguards and mechanisms envisaged for mitigating that risk, ensuring the protection of personal data, and demonstrating compliance with this Regulation.”*
With a GDPR readiness assessment, you will get accurate insight to the data stored across your organization. This simple-to-use assessment gives you quick, real-time analysis to make informed decisions, reduce costs and architect the optimal data security/data protection infrastructure for your organization.
*http://www.privacy-regulation.eu/en/r90.htm